]]>2014-04-03T06:08:52-05:002014-04-03T06:08:52-05:00https://www.ethicalhacker.net/forums/viewtopic.php?t=11848&p=62415#p62415A bitcoin transmission is stored as an event in the database.

You can inject an arbitrary raw 20 byte binary string into the database files (forever) because of that by setting the target address of a transaction to a wanted value (more or less). A bitcoin address (the intended receiver of any amount of coins) consists of 25 bytes. The first one equals 1 by default and is uninteresting. The following 20 bytes identifies the intended receiver and can be set to exactly anything. The following 25 bytes is just a hash of the former 21 bytes. A bitcoin transaktion contains such an address and is stored on each and every bitcoin-client forever. If you delete the database from one bitcoin-client (or has a fresh install), your client will synchronize with the rest of the network.

Now, imagine that we inject so called "virus signatures" that anti-virus programs recognizes into the bitcoin database. What'll happen is that that will trigger the anti-virus program for every bitcoin client user that has an anti-virus program installed (and this won't go away ever.. you can't clean the database). Those virus signatures are harmless in their own, but they are something that anti-virus program use to recognize viruses. The anti-virus programs will think that the local bitcoin database is infected.

Spamming the bitcoin database with virus signatures will cause havoc. Some antivirus-programs will delete the database locally, others will deny their bitcoin-client access to the databases. Some won't be able to start their bitcoin-clients again (and can't understand why). Some will format and reinstall their computer.. to once again get "infected" when they get a bitcoin client again. Panic will spread among computer n00bs. Uneducated rumors will spread that bitcoin is spreading viruses. Havoc will simply emerge. Media will react, and dramatize the thing enormously. The value of bitcoins will drop hasty. All of this just because we send a minimal amount of bitcoins (the smallest amount allowed) to given bitcoin addresses.

You can confirm that the injection works by doing the following:brainwallet.org/#converter click on HEX on the top, and B58Check further down.Place an exactly 20 bit hex value there. Now you can either send any amount to the bitcoin address that appears in the lower box, and verify that your local bitcoin database soon contains the 20 bytes string of your choise. But you can also take that address and input it into the search box in the upper right of blockchain.info and see that this recipent [your 20 bytes] indeed is addressed exactly as you specified (it's called the Hash 160) and just trust me that it'll be stored exactly so on the physical disk as well.

Now, how do we know what 20 bytes to send? To make a long story short, I've converted all virus signatures that I could find from an open project http://www.nlnetlabs.nl/downloads/antiv ... es.strings into 20 byte long strings and later into bitcoin addresses [all signatures equal to or longer than 20 strings has been used.. the short ones have just been padded with zeros]. If I put all those "viruses" into one file, it causes virus-total to go nuts http://www.virustotal.com/en/file/ad357 ... 396453693/Imagine having that forever in the bitcoin database files. This is far from being the best you can do with injecting stuff into the bitcoin database (there are for example better virus signatures and alike out there that can be used). But this should work pretty well, and cause a lot of havoc and annoyance.

By using the brainwallet.org converter above, you can easily convert the bitcoin addresses to hex and see that those comes solely from the virus definition database. When the coins are sent to those addresses, they are lost forever since nobody owns those addresses.

Please help spamming the bitcoin database with virus signatures . Pick some address at random, check that it haven't been corrupted (use brainwallet and he virus signature list), and send a minimal amount of coins to that address.

I've failed miserably at this point, since I lack bitcoins. I thought I'd have enough by now (I've long fought to get some BTC), but aparently it wasn't enough (you need a minimum amount of fractions of a bitcoin to be able to send anything).

The addresses are available here: pastebin.com/ct2WHUK5 (there's no point in altering those for your own winning sake.. even if you get thousands of those minimal required transaktion amounts.. they'll combined have a value less than the price of a biscuit).

]]>2013-09-17T12:34:22-05:002013-09-17T12:34:22-05:00https://www.ethicalhacker.net/forums/viewtopic.php?t=11545&p=61758#p61758I also agree that attack campaigns from mentioned countries have been going on for a few years now at least. So not really anything new I guess. But you can bet that as things keep heating up about Syria, that the cyber attacks will heat up as well. There is no doubt that all the big players involved are dumping tons and tons of resources into cyber-warfare technologies.

hayabusa wrote:I tend to avoid these discussions on here, not because they're not relevant, but because usually, they become bloated.

My opinion isn't so much that attacks will increase dramatically (if they want to attack us, they likely already are / were.) Just that they'll gain more exposure in the press, because the outsiders are watching more closely.

+1

Although, interestingly enough the Syrian Electronic Army (SEA) were in the news the same day as your post:

]]>2013-09-05T12:03:23-05:002013-09-05T12:03:23-05:00https://www.ethicalhacker.net/forums/viewtopic.php?t=11545&p=61690#p61690I tend to avoid these discussions on here, not because they're not relevant, but because usually, they become bloated.

My opinion isn't so much that attacks will increase dramatically (if they want to attack us, they likely already are / were.) Just that they'll gain more exposure in the press, because the outsiders are watching more closely.

]]>2013-09-04T18:22:43-05:002013-09-04T18:22:43-05:00https://www.ethicalhacker.net/forums/viewtopic.php?t=11545&p=61684#p61684Guess I'll just finish this up then with a friendly reminder to be keep up on some security best practices: better be aware of those low hanging fruits on your networks and locking those down (including those users who will click on anything), Web side...big big targets of course, and are you auditing your system/user passwords? Better be checking those logs!!

]]>2013-08-27T12:32:14-05:002013-08-27T12:32:14-05:00https://www.ethicalhacker.net/forums/viewtopic.php?t=11545&p=61643#p61643I'm thinking that if the U.S. does get "physically" involved with Syria, that will see a huge increase in cyber attack campaigns against the U.S..

]]>2013-02-24T07:47:58-05:002013-02-24T07:47:58-05:00https://www.ethicalhacker.net/forums/viewtopic.php?t=10147&p=56484#p56484Statistics: Posted by Triban — Sun Feb 24, 2013 7:47 am
]]>2013-02-23T22:01:48-05:002013-02-23T22:01:48-05:00https://www.ethicalhacker.net/forums/viewtopic.php?t=10147&p=56482#p56482They recruit their kids out of HS to begin hacking targets against the US. Whereas here in the US the kids in HS are hacking their schools printers or networks or going after larger targets. Kids these days think that Anon and lulzsec are fighting for them when in fact they fight for their own ideology where they see fit. We need to start when kids are younger and get them in the correct thought process or at least that hacking the gov isn't helping anything. Uncovering state secrets is hurting us economically....this is the hard part though. Getting young people to think like an adult and rethink their actions.

If the US was attacked by a Cyber Attack I think that it would be like WW2 where the Japanese Admiral stated : "I fear all we have done is to awaken a sleeping giant. Yamamoto.. The admiral was later discovered to be flying from one island to another and we shot all of his escort planes and also his plane down. In this same aspect I think if China launched an attack that disabled us for a while they would have more that they can handle.